Cisco IronPort Appliances Telnet Remote Code Execution Vulnerability

2012-01-2617:00:00

tools.cisco.com

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.972 High

EPSS

Percentile

99.8%

JSON

Cisco AsyncOS Software for Cisco Web Security Appliance (WSA), Cisco Email Security Appliance (ESA), and Cisco Content Security Management Appliance (SMA) contain a vulnerability that may allow a remote, unauthenticated attacker to execute arbitrary code with elevated privileges.

Cisco has released software updates that address this vulnerability. Workarounds that mitigate this vulnerability are available.

Note: This security advisory has been updated to include important information about Cisco WSA

This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120126-ironport[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120126-ironport”]

CPENameOperatorVersion
cisco ironport security management applianceeqany
cisco ironport email security applianceeqany
cisco web security appliance (wsa)eqany
cisco content security management appliance (sma)eqany
cisco ironport security management applianceeqany
cisco ironport email security applianceeqany
cisco web security appliance (wsa)eqany
cisco content security management appliance (sma)eqany

Name	Operator	Version
cisco ironport security management appliance	eq	any
cisco ironport email security appliance	eq	any
cisco web security appliance (wsa)	eq	any
cisco content security management appliance (sma)	eq	any
cisco ironport security management appliance	eq	any
cisco ironport email security appliance	eq	any
cisco web security appliance (wsa)	eq	any
cisco content security management appliance (sma)	eq	any